MPED-X-Routing-Tender20080721 - Madhya Pradesh State Excise

More documents

Recommendations

Info

Security Content: • Consists of vendor’s original threat intelligence and is not overly dependent on information available in the public domain. • Continuously updated with new threat intelligence, including detailed help text, in an automated fashion and without physical access to the unit. • Detects and blocks all known, high-risk exploits along with their underlying vulnerability (not just one exploit of that vulnerability). • Detects and blocks zero-day attacks without requiring an update. • Reports provide information on latest security issues, cyber attack trends, and statistics. Customization: • Automatically blocks malicious traffic out-of-the-box and allows additional blocking upon policy customization. • Can enable/disable each individual signature. • Each signature should allow granular tuning. • Supports assigning of ports to custom applications. • Filters traffic based on IP address or network range, protocol, and service in support of organizational security policy to allow/disallow specific types of activity between hosts. Updates: • Supports automated security check and product updates. • Updates are frequent and regular. • Vendor provides detailed update history on public web site. • Security check updates do not require reboot of IPS unit. Performance Consideration: • Does not introduce network latency. • Fails open should a power loss occur. • Notifies console of unit interruption. Console should receive alert and/or provide additional notification to administrator should any component become nonoperational or experience a communications problem. • The alert should specify the type of problem encountered, and users should have the ability to enable tracing mechanisms to determine the exact nature of the issue Accuracy of Intrusion Detection: • Accurately detects intrusion attempts and discerns between the various types and risk levels including unauthorized access attempts, pre-attack probes, suspicious activity, DoS, DDoS, vulnerability exploitation, brute force, hybrids, and zero-day attacks. • Accurately prevent intrusions from occurring. Describe underlying prevention technology. 66
• Accurately identifies attacks with correct severity level while allowing benign traffic to pass without interruption. • Accurately respond to intrusion attempts Detection & Prevention Technology: • Detects and blocks all known, high-risk exploits. • Employs full seven-layer protocol analysis of over 150 Internet protocols and data file format. Provide list of network and application layer protocols decoded. • Operates effectively and protects against high risk, high impact malicious traffic via default out of box configuration, should be able to block more than 1000 attacks by default. • Performs stateful packet inspection • Detects and blocks malicious web traffic on any port. • Does TCP stream reassembly. • Does IP defragmentation. • Protocol anamoly detection • Does Bi- directional inspection • Detects attacks within protocols independent of port used • Does Heuristics • Does RFC Compliance • Does Protocol tunneling • Supports attack recognition inside IPv6 encapsulated packets • Supports active blocking of traffic based on pre-defined rules to thwart attacks before any damage is done, i.e. before compromise occurs. • Supports active blocking of traffic based on dynamic responses to pre-defined rules. • Supports several prevention techniques including drop-packet, tcp-rst, etc. Response Mechanisms: • Offers a variety of built-in responses including console alerts, database logging, email notifications, SNMP traps, offending packet captures, and packet captures. Management Console: • Management Console Software should be able to manage 10 Network Appliances. Hardware specifications to be provided for the Management Console. • Allows central management of signature updates. Is able to centrally push out updates from one location to multiple heterogeneous networks, server agents. • Centralized Management Console should manage all the products NIPS, HIPS, End Point Security and Vulnerability Assessment. • Support for built in ticketing system. • Granular Management. Allows policy to be assigned • Policy per device • Policy per port • Policy per VLAN tag • Policy per IP address/range • Provide automated notification of IPS communications failure • Integration capability with Arcsight, Tivoli, HPOV 67
Page 1 and 2:
BID DOCUMENT GOVERNMENT OF MADHYA P
Page 3 and 4:
Table of Contents SECTION Page Numb
Page 5 and 6:
GHz GoI/GOI GoMP/GOMP GUI IP IPS IS
Page 7 and 8:
SECTION I : Notice Inviting Bids (N
Page 9 and 10:
SECTION II : Introduction Conceptua
Page 11 and 12:
Access through Internet DMZ (De Mil
Page 13 and 14:
Militarized Zone Appln. Servers DB
Page 15 and 16: 4. Testing and Acceptance The Vendo
Page 17 and 18: to MPED. At the end of acceptance t
Page 19 and 20: solution is functioning as intended
Page 21 and 22: 4. SECTION IV: Hardware Specificati
Page 23 and 24: 4.3) Web Server ((Rack mountable) F
Page 25 and 26: 4.5 a) DNS/ DHCP Server (Rack mount
Page 27 and 28: 4.5 c) Antivirus Server ((Rack moun
Page 29 and 30: 4.5e) Domain Controller Server ((Ra
Page 31 and 32: 4.5 g) Staging Server (Rack mountab
Page 33 and 34: 4.6) System Software Components No.
Page 35 and 36: drivers/functionality such as MPIO
Page 37 and 38: 4.11) Gateway ANTI-VIRUS AND ANTI-S
Page 39 and 40: Shall install on an NT/2000 server
Page 41 and 42: 4.12) Desktop PC Processor Chipset
Page 43 and 44: 4.13b) Laser Printer Black and whit
Page 45 and 46: Bypass DG Compatibility Isolation S
Page 47 and 48: 4.16 b) UPS 2 KVA offline 2KVA Ofli
Page 49 and 50: 4.16 d) UPS 3 KVA Online Requiremen
Page 51 and 52: 4.17) DG Set 60 KVA Supply of 60 KV
Page 53 and 54: can diagnose root cause out of the
Page 55 and 56: Live Health enables Script files ex
Page 57 and 58: o Buffer Cache hit ratio to monitor
Page 59 and 60: Network Management Fire walling fea
Page 61 and 62: Enterprise class Central User datab
Page 63 and 64: o Should provide Minimum & Maximum
Page 65: o o o o o o o o Should perform URL
Page 69 and 70: Security Content: • Consists of v
Page 71 and 72: Reporting: • Includes built-in re
Page 73 and 74: → Should support 10G Should have
Page 75 and 76: · Unicast MAC filtering · Unicast
Page 77 and 78: o o o o o Management o o o o o o o
Page 79 and 80: ii. OSPF iii. OSPF Over Demand Circ
Page 81 and 82: i. The architecture should be based
Page 83 and 84: 5 Ac Main Channel 12 Pts 5Amp flat
Page 85 and 86: (iii) b. To provide WAN management
Page 87 and 88: SECTION V: Roles and Responsibiliti
Page 89 and 90: e) Ability to track changes in conf
Page 91 and 92: SECTION VII: Instructions to Bidder
Page 93 and 94: “Contract Value” means the pric
Page 95 and 96: 7.6.2 The Bidder is required to ens
Page 97 and 98: of work by the bidder 7. ISO 9001:2
Page 99 and 100: ix. Project Management, reporting a
Page 101 and 102: and outer envelopes shall be addres
Page 103 and 104: deviation, provided such a waiver d
Page 105 and 106: S.NO. Pre- Qualification Criteria R
Page 107 and 108: Criteria for Evaluation and Compari
Page 109 and 110: Attribute (s) Category Criteria Bre
Page 111 and 112: communicated to all the technically
Page 113 and 114: 7.23.3 Expenses for the Contract Th
Page 115 and 116: For network, target Network availab
Page 117 and 118:
Components A B Hardware, software
Page 119 and 120:
(vi) d. The Vendor should have a we
Page 121 and 122:
7.27.7.3 MPED to other offices Netw
Page 123 and 124:
PBH ESH PID3 95 PID2 PID3 94.5 PID2
Page 125 and 126:
(iii) (iv) (v) complete repairs to
Page 127 and 128:
y the competent authority or in the
Page 129 and 130:
. The Vendor is responsible for com
Page 131 and 132:
carrying out of the work and to hav
Page 133 and 134:
vi. Bid is not accompanied by all r
Page 135 and 136:
LIST OF ATTACHED ANNEXURES Annexure
Page 137 and 138:
21. District Excise Office Bhagwan
Page 139 and 140:
68. Distillery Gwalior Distillers L
Page 141 and 142:
115.District Excise Office Collecto
Page 143 and 144:
163.District Excise Office District
Page 145 and 146:
213.CL Storage Warehouse Near Bus S
Page 147 and 148:
Annexure 3: To BID FORM Bid No EC-1
Page 149 and 150:
Sl.No Financial Year Total Annual T
Page 151 and 152:
C. Particulars of System Integratio
Page 153 and 154:
Annexure 5: TECHNICAL BID COVERING
Page 155 and 156:
Annexure 6: PERFORMANCE STATEMENT F
Page 157 and 158:
Annexure 8: TECHNICAL DEVIATION FOR
Page 159 and 160:
Annexure 10: [Date] COMMERCIAL BID
Page 161 and 162:
Annexure 11: COMMERCIAL DEVIATION F
Page 163 and 164:
18 d Mailing Solution No.s 19 Link
Page 165 and 166:
Annexure 14: S.No Item Wise Price S
Page 167 and 168:
31 32 I/O with GANG Box and face pl
Page 169:
Annexure 16 Bid No EC-1 /2008 Forma
show all

MPED-X-Routing-Tender20080721 - Madhya Pradesh State Excise

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?